EU Plans Sanctions for Cyberattackers Acting on Behalf of Russia

October 11, 2024 at 12:07AM The European Union has approved a sanctions mechanism to counter cyberattacks and interference from Russia. This framework allows targeting of individuals and organizations undermining EU member security and values. With rising pro-Russian activities, the EU will determine appropriate sanctions, although none have been imposed yet. ### Meeting Takeaways 1. **Sanctions … Read more

Healthcare attacks spread beyond US – just ask India’s Star Health

October 10, 2024 at 11:04PM Star Health, an Indian health insurance provider, confirmed a cyber attack exposing over 30 million client records, initially stating no data breaches. A hacker named “xenZen” claimed to have acquired the data from Star Health’s CISO. The company is pursuing legal action and conducting a forensic investigation alongside authorities. ### … Read more

Ukraine arrests rogue VPN operator providing access to Runet

October 10, 2024 at 06:18PM Ukraine’s cyber police arrested a 28-year-old for operating an illegal VPN service that enabled access to the Russian internet (Runet), violating national security laws. The service facilitated significant network traffic and could lead to a 15-year prison sentence. Police seized equipment and are investigating possible accomplices and Russian connections. ### … Read more

Akira and Fog ransomware now exploit critical Veeam RCE flaw

October 10, 2024 at 06:10PM Ransomware gangs are exploiting a critical vulnerability (CVE-2024-40711) in Veeam Backup & Replication servers, allowing remote code execution. Disclosed on September 4 with updates, attackers used compromised VPNs to deploy Akira and Fog ransomware. Veeam has a history of vulnerabilities attracting such malicious activity, impacting many global organizations. **Meeting Takeaways:** … Read more

Crooks stole personal info of 77k Fidelity Investments customers

October 10, 2024 at 05:35PM Fidelity Investments informed 77,099 individuals about a data breach in August, assuring that their accounts were not compromised. The breach involved unauthorized access to customer information between August 17-19. Fidelity is offering two years of free credit monitoring and has engaged an external firm to investigate the incident. ### Meeting … Read more

Critical Mozilla Firefox Zero-Day Allows Code Execution

October 10, 2024 at 05:20PM Mozilla has addressed a critical security vulnerability in Firefox (CVE-2024-9680), posing a severe risk with a CVSSv3 rating of 9.8. The flaw allows arbitrary code execution and affects multiple Firefox versions. Users are urged to upgrade to the latest versions to mitigate risks associated with this exploit. ### Meeting Takeaways: … Read more

Fidelity Notifies 77K Customers of Data Breach

October 10, 2024 at 04:15PM Over 77,000 Fidelity Investments clients were notified of a data breach where unauthorized access to personal information occurred between Aug. 17-19. Although customer accounts were unaffected, concerns around identity theft persist. Fidelity offers two years of free credit monitoring and advises clients to monitor their financial activities closely. ### Meeting … Read more

Microsoft Previews New Windows Feature to Limit Admin Privileges

October 10, 2024 at 03:24PM Microsoft’s new Administrator Protection feature in Windows aims to strengthen security by limiting local administrator privileges. It transforms privilege elevation into a “just-in-time” event, utilizing a temporary shadow account that disappears post-task, making it harder for attackers to exploit administrative access. This enhances overall system security and monitoring capabilities. ### … Read more

Marriott settles with FTC, to pay $52 million over data breaches

October 10, 2024 at 03:05PM Marriott International and Starwood Hotels will pay $52 million to settle data breach claims affecting over 344 million customers. They must implement a comprehensive security program, allow data deletion requests, and provide transparency in data handling. Additionally, they agreed to pay 49 states to resolve related allegations. ### Meeting Takeaways … Read more

US, UK warn of Russian APT29 hackers targeting Zimbra, TeamCity servers

October 10, 2024 at 02:50PM U.S. and U.K. cyber agencies have warned that APT29 hackers linked to Russia are targeting unpatched Zimbra and JetBrains TeamCity servers worldwide. A joint advisory urges network defenders to deploy security patches to prevent attacks exploiting multiple vulnerabilities, highlighting ongoing threats to both government and private sectors. ### Meeting Takeaways: … Read more